[openstack-dev] [Group-Based-Policy] Use cases for External Policy chains

Ivar Lazzaro ivarlazzaro at gmail.com
Thu Mar 19 22:25:10 UTC 2015


Hello,

As a follow up on [0] I have a question for the community.
There are multiple use cases for a PTG *providing* a ServiceChain which is
*consumed* by an External Policy (think about LB/FW/IDS and so forth).
However, given the current set of services we support, I don't see any use
case for having the External Policy as the provider on a PRS with a chain.

Am I missing something? And if not, how should we manage a REDIRECT action
provided by an External Policy? We could either ignore, validate or treat
that particular action just like a normal ALLOW.

Thanks for your feedbacks,
Ivar.

[0] https://bugs.launchpad.net/group-based-policy/+bug/1432779
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20150319/075e0715/attachment.html>


More information about the OpenStack-dev mailing list